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CLAIMS 

1. A method for providing a secret cryptographic key (sk) and a public cryptographic key (pk) 
applicable in a network of connected computer nodes using a signature scheme, the method 
being executable by a first computer node and comprising the steps of: 

5 - generating the secret cryptographic key (sk) by 

- selecting two random factor values (P 5 Q), 

- multiplying the two selected random factor values (P, Q) to obtain a modulus value (N), 
and 

- selecting a secret base value (g\ h\ x' ) in dependence on the modulus value (N), 
10 wherein the secret base value (g\ h\ x*) forms part of the secret cryptographic key (g\ h\ 

- generating the public cryptographic key (pk) by 

- selecting a number (I) of exponent values (e u ...,ei), and 

- deriving a public base value (g, h, x) from the exponent values (e\ 9 ... 9 ei) and the secret 
15 base value (g\ h\ x% wherein the public base value (g, h, x) and the modulus value (N) 

form part of the public cryptographic key (g, h, x, N); 

- deleting the two random factor values (P, Q); and 

- providing the public cryptographic key (g, h, x, N) within the network; 

such that the public cryptographic keiy (g, % x, N) and at least one of the selected exponent 
20 values (ei ,...,£/) is usable for verifying a signature value (i, y, a) on a message (m) to be sent 
within the network to a second computer node for verification. 

2. The method according to claim 1 further comprising providing a description of the exponent 
values (ei,...,ei) within the network. 

3. The method according to any preceding claim further comprising defining an order of the 
25 selected exponent values (e u ... 9 ei) for enabling to communicate the validity of the signature 

value (/, y, a) in the event of a detected intrusion. 
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A method for providing a signature value (i, y, a) on a message (m) in a network of connected 
computer nodes, the method being executable by a first computer node and comprising the 
steps of: 

- selecting a first signature element (a); 

- selecting a signature exponent value (el) from a number (I) of exponent values and 

- deriving a second signature element (y) from a provided secret cryptographic key (g' h h' h 
x'i), the message (m), and the number (I) of exponent values (e u ... y el) such that the first 
signature element (a), the second signature element (y), and the signature exponent value (el) 
satisfy a known relationship with the message (m) and a provided public cryptographic key 
(g, h, x, N), wherein the signature value (i, y 9 a) comprises the first signature element (a), the 
second signature element (y), and a signature reference (i) to the signature exponent value 

the signature value (/, j>, a) being sendable within the network to a second computer node for 
verification. 

The method according to claim 4, wherein the step of deriving a second signature element (y) 
further comprises deriving a signature base value (g h h h xi) using a provided public 
cryptographic key (g, h, x, N), the provided secret cryptographic key (g' h h f h x'i), and the 
exponent values (ei v ..,e/). 

The method according to claim 4 or 5 further comprising deriving a new secret cryptographic 
key (g'i+u h'i+x, x' i+ i) from the provided secret cryptographic key (g' h h' h x'i) and the selected 
signature exponent value (el). 

A method for verifying a signature value (i 9 y, a) on a message (m) in a network of connected 
computer nodes, the method being executable by a second computer node and comprising the 
steps of: 

- receiving the signature value (/, j;, a) from a first computer node; 

- deriving a signature exponent value {el) from the signature value (/, y 9 a); and 
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- verifying whether the signature exponent value (e,) and part of the signature value (z, y, a) 
satisfy a known relationship with the message (m) and a provided public cryptographic key 
(g, h, x, N), otherwise refusing the signature value (/, y, a), 

wherein the signature value (/, y, a) was generated from a first signature element (a), a 
5 number (I) of exponent values (e u ... 9 ej), a provided secret cryptographic key (g' h h' h x'i), and 
the message (m). 

8. A method for communicating within a network of connected computer nodes the validity of a 
signature value (j, y, a) in the event of an exposure of a secret cryptographic key (sk) relating 

10 to the signature value (i 9 y, a), the method comprising the steps of: 

- defining an order of exponent values (ei,.. .,£/); 

- publishing a description of the exponent values (e u ...,ei) and the order of the exponent • 
values (ei v .. 5 ei) within the network; . 

- publishing a revocation reference (j) to one of the exponent values (e\ 9 ...,ei) within the 
15 network such that the validity of the signature value (/, >>, a) is determinable by using the 

revocation reference (/), the order of exponent values (ei,...,e/),-.and a provided public 
cryptographic key (pk). 

9. The method according to any preceding claim further comprising applying each of the 
exponent values (e\,...,ej) to at most one signature value (/, y, a). 

20 10. A computer program element comprising program code means for performing a method of 
any one of the claims 1 to 9 ; when said program is run on a computer. 

1 1 . A computer program product stored on a computer usable medium, comprising computer 
readable program means for causing a computer to perform a method according to anyone of 
the preceding claims 1 to 9. 
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12. A network device (p t ) comprising: 

- a computer program product according to claim 1 1 ; 

- a processor for executing the method; 

- the processor having access to exchanged messages in the network. 
5 * * * 



